Amendments to the Claims 

1 Claim 1 (currently amended): A security container that secures a document component by 

2 encapsulating, within the security container, an encrypted version of the document component, an 

3 encrypted version of conditional logic for controlling operations on the document component, and 

4 key distribution information usable for controlling access to the document component, wherein: 

5 the encrypted version of the document component and the encrypted version of the 

6 conditional logic are both encrypted using a first key; 

7 the key distribution information comprises at least one key element two key elements ; and 

8 each key element comprises (i) an identification of a user, a user group, a process, or a 

9 process group that is authorized to access the document component; and (ii) an encrypted version 

10 of the first key, wherein the encrypted version of the first key [[is]] comprises the first key 

1 1 encrypted using a second key that is usable only by the identified user, user group, process, or 

1 2 process group for decrypting the encrypted version of the first key, thereby enabling that user, 

1 3 user group, process, or process group to obtain the first key and use it for decrypting the 

1 4 document component and the conditional logic. 

1 Claim 2 (currently amended): The security container according to Claim 1 , wherein the document 

2 component comprises a portion of a higher-level document and the security container secures 

3 [[a]] the portion of [[a]] the higher-level document. 

1 Claim 3 (original): The security container according to Claim 2, wherein the higher- level 

2 document has more than one portion secured by security containers. 
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1 Claim 4 (currently amended): A method of securing document content using security containers, 

2 comprising the step of encapsulating, within a security container, an encrypted version of a 

3 document component, an encrypted version of conditional logic for controlling operations on the 

4 document component, and key distribution information usable for controlling access to the 

5 document component, wherein: 

6 the encrypted version of the document component and the encrypted version of the 

7 conditional logic are both encrypted using a first key; 

8 the key distribution information comprises at least one key element two key elements ; and 

9 each key element comprises (i) an identification of a user, a group of users, a process, or 

1 0 group of a processes that is authorized to access the document component; and (ii) an encrypted 

1 1 version of the first key, wherein the encrypted version of the first key [[is]] comprises the first key 

1 2 encrypted using a second key that is usable only by the identified user, user group, process, or 

1 3 process group for decrypting the encrypted version of the first key, thereby enabling that user, 

1 4 group of users, process, or groups of processes to obtain the first key and use it for decrypting the 

1 5 document component and the conditional logic. 

Claim 5 (canceled) 

1 Claim 6 (previously presented): The method according to Claim 4, wherein the first key 

2 comprises a symmetric key. 
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1 Claim 7 (previously presented): The method according to Claim 6, wherein the second key 

2 comprises, for each of the key elements, a public key associated with the identified user, process, 

3 group of users, or group of processes. 

Claim 8 (canceled) 

1 Claim 9 (original): The method according to Claim 4, wherein the conditional logic further 

2 controls access to the document component. 

1 Claim 10 (original): The method according to Claim 9, wherein the key distribution information 

2 further controls access to the conditional logic. 

Claim 1 1 (canceled) 

1 Claim 12 (original): The method according to Claim 4, wherein the security container is encoded 

2 in structured document format. 

1 Claim 13 (original): The method according to Claim 12, wherein the structured document format 

2 is Extensible Markup Language ("XML") format. 

Claim 14 (canceled) 
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Claim 15 (previously presented): The method according to Claim 4, wherein at least one of the 
key elements identifies a group of users and wherein the users in the group are determined 
dynamically, upon receiving a request to access to the document component. 



1 Claim 16 (previously presented): The method according to Claim 15, wherein the dynamic 

2 determination further comprises accessing a repository where the users in the group are identified. 

1 Claim 17 (previously presented): The method according to Claim 4, further comprising the steps 

2 of: 

3 receiving, from a requester, a request to access the document component; 

4 programmatically determining, using the key distribution information, whether the 

5 requester is authorized to access the document component by determining whether, in any 

6 selected one of the key elements, the requester is the identified user or the identified process or is 

7 a member of the identified group of users or the identified group of processes, and if so, 

8 performing steps of: 

9 decrypting the encrypted version of the first key from the selected one of the key 

1 0 elements using the second key usable by that requester, thereby obtaining the first key; 

1 1 decrypting the encrypted version of the conditional logic using the first key, 

1 2 thereby obtaining the conditional logic; 

1 3 decrypting the encrypted version of the document component using the first key, 

1 4 thereby obtaining the document component; and 

1 5 programmatically evaluating, using the conditional logic, whether the request can 
Serial No. 10/632,156 -8- RSW920030063US1 



16 
17 



be granted; and 

rejecting the request when the programmatically determining step has a negative result. 



1 Claim 18 (original): The method according to Claim 17, wherein the conditional logic evaluates 

2 at least one of: an identity of the requester; a device used by the requester; a context of the 

3 requester; a zone of an application used by the requester; a user profile of the requester; and a 

4 target destination of the request. 

1 Claim 19 (currently amended): A computer program product for securing document content 

2 using security containers, the computer program product embodied on one or more computer- 

3 readable media and comprising: 

4 computer-readable program code for receiving, from a requester, a request to access 

5 document content, wherein the document content is encapsulated as an encrypted version of a 

6 document component within a security container along with an encrypted version of conditional 

7 logic for controlling operations on the document component and key distribution information 

8 usable for controlling access to the document component, wherein: 

9 the encrypted version of the document component and the encrypted version of the 

1 0 conditional logic are both encrypted using a first key; 

1 1 the key distribution information comprises at least one key element two key 

1 2 elements ; and 

1 3 each key element comprises (i) an identification of a user, a group of users, a 

1 4 process, or group of a processes that is authorized to access the document component; and (ii) an 
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1 5 encrypted version of the first key, wherein the encrypted version of the first key [[is]] comprises 

1 6 the first key encrypted using a second key that is usable only by the identified user, user group, 

1 7 process, or process group for decrypting the encrypted version of the first key, thereby enabling 

1 8 that user, group of users, process, or groups of processes to obtain the first key and use it for 

1 9 decrypting the document component and the conditional logic; 

2 0 computer-readable program code for pro grammatically determining, using the key 

2 1 distribution information, whether the requester is authorized to access the document component 

22 by determining whether, in any selected one of the key elements, the requester is the identified 
2 3 user or the identified process or is a member of the identified group of users or of the identified 
2 4 group of processes, and if so, performing steps of: 

2 5 decrypting the encrypted version of the first key from the selected one of the key 

2 6 elements using the second key usable by that requester, thereby obtaining the first key; 
2 7 decrypting the encrypted version of the conditional logic using the first key, 

2 8 thereby obtaining the conditional logic; 

2 9 decrypting the encrypted version of the document component using the first key, 

3 0 thereby obtaining the document component; and 

3 1 pro grammatically evaluating, using the conditional logic, whether the request can 

32 be granted; and 

3 3 computer-readable program code for rejecting the request when operation of the 

3 4 computer-readable program code for pro grammatically determining yields a negative result. 



1 



Claim 20 (currently amended): 
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2 containers, comprising: 

3 a security container that encapsulates an encrypted version of a document component, an 

4 encrypted version of conditional logic for controlling operations on the document component, and 

5 key distribution information usable for controlling access to the document component, wherein: 

6 the encrypted version of the document component and the encrypted version of the 

7 conditional logic are both encrypted using a first key; 

8 the key distribution information comprises at least one key element two key 

9 elements ; and 

1 0 each key element comprises (i) an identification of a user, a group of users, a 

1 1 process, or group of a processes that is authorized to access the document component; and (ii) an 

1 2 encrypted version of the first key, wherein the encrypted version of the first key [[is]] comprises 

1 3 the first key encrypted using a second key that is usable only by the identified user, user group, 

1 4 process, or process group for decrypting the encrypted version of the first key, thereby enabling 

1 5 that user, group of users, process, or groups of processes to obtain the first key and use it for 

1 6 decrypting the document component and the conditional logic; 

1 7 means for receiving, from a requester, a request to access the document component; 

1 8 means for pro grammatically determining, using the key distribution information, whether 

1 9 the requester is authorized to access the document component by determining whether, in any 

2 0 selected one of the key elements, the requester is the identified user or the identified process or is 

21 a member of the identified group of users or of the identified group of processes, and if so, 

2 2 performing steps of: 

2 3 decrypting the encrypted version of the first key from the selected one of the key 
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2 4 elements using the second key usable by that requester, thereby obtaining the first key; 
2 5 decrypting the encrypted version of the conditional logic using the first key, 

2 6 thereby obtaining the conditional logic; 

2 7 decrypting the encrypted version of the document component using the first key, 

2 8 thereby obtaining the document component; and 

2 9 programmatically evaluating, using the conditional logic, whether the request can 

3 0 be granted; and 

3 1 means for rejecting the request when operation of the means for programmatically 

32 determining yields a negative result. 

1 Claim 2 1 (original): The system according to Claim 20, wherein the security container is 

2 embedded within a document. 

1 Claim 22 (original): The system according to Claim 20, wherein the security container 

2 encapsulates the document component on a system clipboard. 

1 Claim 23 (original): The system according to Claim 20, wherein the security container is placed 

2 on a user interface. 

1 Claim 24 (original): The system according to Claim 20, wherein the security container 

2 encapsulates the document component for exchange using interprocess communications. 
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1 Claim 25 (original): The system according to Claim 20, wherein the security container 

2 encapsulates the document component for exchange using a messaging system. 

1 Claim 26 (original): The system according to Claim 20, further comprising means for copying the 

2 document component to a target destination, wherein the means for copying copies the entire 

3 security container in order to copy the document component. 

Claims 27 - 32 (canceled) 
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